Timeline of Mozilla shell: Security Vulnerability

Friday July 9th, 2004

Adam Sacarny writes: "I have created a timeline of the latest security bug. It shows how quickly the Mozilla developers handled the problem, tracking from the first mention in Bugzilla to the last CVS commit to the webpage. Readers get a peak into how development works over at mozilla.org, in particular into how security issues get resolved."

It is not enough to create a patch for a security hole. One must then distribute the patch quickly and to all users, including the technophobes and the people on restricted corporate PCs.

I clicked the Firefox button in the upper-right corner of my browser and was taken to the Firefox product homepage. Where there was no information whatsoever about the hole or the patch and no obvious link to an appropriate support and update page that might have it.